security

Imagine this: you’re running a web hosting service and you need to connect in to add another client who has specific needs your setup script doesn’t account for. You try to connect via SSH, but it hangs. After hanging, you escape out of the session and reconnect with the verbose flag set. You notice the wrong IP address, and you realize that you set up Cloudflare proxying. So you SSH in to the server with the public facing IP address, to find out it’s still not connecting....

On October 27th at 7 AM CDT, GuidePoint Security opened their 2022 Capture the Flag. This also happens to be the first Capture the Flag that I have ever participated in. As of me writing this blog post, I have yet to start as the CTF hasn’t started. Prior to me starting the event, I opted to get some tools set up in advance: VMWare Workstation 16 Kali Linux Sublime Text & Visual Studio Code Working OpenVPN install ILSpy gobuster & dirbuster nmap nitko Additionally, I have set up the following resources to be easily accessible:...